Answer-first summary for fast verification
Answer: GKE and GCP provide the tools you need to build a PCI DSS-compliant environment.
The correct answer is C: GKE and GCP provide the tools you need to build a PCI DSS-compliant environment. Google Kubernetes Engine (GKE) is PCI DSS-compliant when configured with the necessary controls and safeguards, making it suitable for handling sensitive payment information. While not all GCP services are automatically PCI DSS-compliant, GCP offers a range of tools and services, such as Cloud IAM, Cloud KMS, and Cloud Security Command Center, to help build and maintain a compliant environment. The other options are either incorrect or less accurate, making C the most precise and comprehensive choice.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company is planning to migrate its on-premises data center to Google Cloud Platform (GCP). As part of this migration, you intend to use Google Kubernetes Engine (GKE) for orchestrating your workloads. Since your architecture involves handling sensitive payment information, it must comply with the Payment Card Industry Data Security Standard (PCI DSS). Which of the following statements about using GKE in a PCI DSS-compliant environment is most accurate?
A
App Engine is the only compute platform on GCP that is certified for PCI DSS hosting.
B
GKE cannot be used under PCI DSS because it is considered shared hosting.
C
GKE and GCP provide the tools you need to build a PCI DSS-compliant environment.
D
All Google Cloud services are usable because Google Cloud Platform is certified PCI-compliant.
No comments yet.